Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/07/03 7:53 a.m.8 views

CVE-2026-11778

The The CURCY – Multi Currency for WooCommerce – Smoothly on WooCommerce 9.x plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.2.14. This is due to the software allowing users to execute an action that does not properly validate a value...

5.4CVSS6.3AI score0.00255EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.13 views

PT-2026-4326

Name of the Vulnerable Software and Affected Versions BuddyPress plugin for WordPress versions prior to 14.3.4 Description The BuddyPress plugin for WordPress is susceptible to arbitrary shortcode execution. This occurs because the software does not properly validate input before running the do...

7.3CVSS6.1AI score0.00444EPSS
Exploits0References9
NVD
NVD
added 2025/08/16 12:15 p.m.9 views

CVE-2025-8878

The The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 4.16.4. This is due to the software allowing users to execute an...

6.5CVSS0.0041EPSS
Exploits0References7
OSV
OSV
added 2024/09/24 3:15 a.m.5 views

CVE-2024-8623

The The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.3.3.3. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. Thi...

7.3CVSS6.1AI score0.00648EPSS
Exploits0References3
Rows per page
Query Builder